Linux » Linux Kernel » 2.6.13.1 : Security Vulnerabilities, CVEs, Published In 2007 (Information Leak)
The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.
Max CVSS
2.1
EPSS Score
0.04%
Published
2007-12-04
Updated
2020-08-12
The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space.
Max CVSS
1.9
EPSS Score
0.04%
Published
2007-10-23
Updated
2023-02-13
2 vulnerabilities found